VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosím o kontrolu logu, zpomalený NTB

https://forum.viry.cz:443/viewtopic.php?t=143849

Stránka 1 z 1

prosím o kontrolu logu, zpomalený NTB

Napsal: 05 dub 2015 19:54
od mr.BSE
Dobrý den,
prosím o kontrolu logu. NTB je zpomalený a po příhlášení otravuje s instalaci green_game_updating_service.exe, ten je umístěn v Program filex x86, zatím jsem ručně nemazal. Počkám na Vaše odborné rady.

Bohužel RSIT při vytváření logu vyhodí hlášku "subscript used on non-accessible variable", takže přikládám log z FRST

Předem mockrát děkuji.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Marek (ATTENTION: The logged in user is not administrator) on NTB-MAREK on 05-04-2015 20:51:09
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek & Marek_2 (Available profiles: Marek & Marek_2)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> smss.exe
Failed to access process -> csrss.exe
Failed to access process -> wininit.exe
Failed to access process -> csrss.exe
Failed to access process -> winlogon.exe
Failed to access process -> services.exe
Failed to access process -> lsass.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> atiesrxx.exe
Failed to access process -> dwm.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> atieclxx.exe
Failed to access process -> hpservice.exe
Failed to access process -> RTKAUDIOSERVICE64.EXE
Failed to access process -> RAVBg64.exe
Failed to access process -> svchost.exe
Failed to access process -> spoolsv.exe
Failed to access process -> svchost.exe
Failed to access process -> armsvc.exe
Failed to access process -> AERTSr64.exe
Failed to access process -> Fuel.Service.exe
Failed to access process -> svchost.exe
Failed to access process -> dasHost.exe
Failed to access process -> ekrn.exe
Failed to access process -> FCUpdateService.exe
Failed to access process -> HSMServiceEntry.exe
Failed to access process -> LMIGuardianSvc.exe
Failed to access process -> ramaint.exe
Failed to access process -> PassThruSvr.exe
Failed to access process -> ss_conn_service.exe
Failed to access process -> svchost.exe
Failed to access process -> LogMeIn.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> WmiPrvSE.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
Failed to access process -> SearchIndexer.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Dropbox, Inc.) C:\Users\Marek\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
Failed to access process -> hpqwmiex.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
Failed to access process -> HPSA_Service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Failed to access process -> SearchProtocolHost.exe
Failed to access process -> SearchFilterHost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7156296 2013-03-08] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3015920 2013-02-06] (Synaptics Incorporated)
HKLM\...\Run: [LogMeIn GUI] => C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe [57928 2014-10-22] (LogMeIn, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-02-26] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-03-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\WINDOWS\inf\ksfilter.inf,MSTEE.Interf (the data entry has 11 more characters).
HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\WINDOWS\inf\ksfilter.inf,MSTEE.Interf (the data entry has 11 more characters).
HKLM\...\RunOnce: [WDM_DRMKAUD] => rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\WINDOWS\inf\WDMAUDIO.inf,WDM_DRMKAUD. (the data entry has 17 more characters).
HKLM\...\RunOnce: [*WerKernelReporting] => C:\Windows\SYSTEM32\WerFault.exe [465320 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Run: [ABUNINSTALLEX] => c:\programdata\ab studio\ABUnInstallEx.exe [258048 2011-11-21] (AB Studio C+E)
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Run: [Akamai NetSession Interface] => "C:\Users\Marek\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [26232152 2015-02-19] (Google)
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Run: [KiesPDLR.exe] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Policies\Explorer: [] 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {5920b7ca-8f16-11e3-be86-7446a07ec4ec} - "F:\ZTE_Handset_USB_Driver.exe" 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {88cf74af-37d9-11e3-be80-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {9ee52764-485d-11e3-be83-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {9eeddd1d-6727-11e3-be85-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {c11e0fe9-9e01-11e3-be8a-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {e4f0cbfe-195b-11e3-be7b-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe" 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {ed18201a-a2b9-11e2-be72-806e6f6e6963} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL E:\START.html
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {f0b3e9e9-2a8b-11e3-be7d-7446a07ec4ec} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL F:\start.html
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [788480 2014-10-29] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\thunderbird.lnk
ShortcutTarget: thunderbird.lnk -> C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Startup: C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Marek\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Marek\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&ts=1424157937&from=obw&uid=TOSHIBAXMQ01ABD100_532KP0T6TXX532KP0T6T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&ts=1424157937&from=obw&uid=TOSHIBAXMQ01ABD100_532KP0T6TXX532KP0T6T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&ts=1424157937&from=obw&uid=TOSHIBAXMQ01ABD100_532KP0T6TXX532KP0T6T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&ts=1424157937&from=obw&uid=TOSHIBAXMQ01ABD100_532KP0T6TXX532KP0T6T&q={searchTerms}
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
URLSearchHook: [S-1-5-21-1642780989-1191528856-3066596962-1005] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM -> {A6406889-136E-4F5B-A301-971AF502109F} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.omniboxes.com/?type=sc&ts=1424157937&from=obw&uid=TOSHIBAXMQ01ABD100_532KP0T6TXX532KP0T6T

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-02-17] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-02-17] (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-10]
CHR Extension: (Google Drive) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-10]
CHR Extension: (YouTube) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-10]
CHR Extension: (Google Search) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-10]
CHR Extension: (AdBlock) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-10]
CHR Extension: (Eml Manager) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijjpnegahhmlieielkpdoifigpdfnnkk [2014-11-06]
CHR Extension: (uTorrent for Google Chrome) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjhaafelbmbpohgmabippkndaaikgdih [2014-03-10]
CHR Extension: (Google Wallet) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-10]
CHR Extension: (Docs PDF/PowerPoint Viewer (by Google)) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2014-03-10]
CHR Extension: (Gmail) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-10]
CHR HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (aapbdbdomjkkjkaonfhkkikfgjllcleb) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-04-02]
OPR Extension: (green game) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\fdjfnhemcmjbjgbhngpabpfdkifonajj [2015-04-02]
OPR Extension: (Adblock Plus) - C:\Users\Marek\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-01-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-02-26] (Advanced Micro Devices, Inc.) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [239680 2014-02-19] (Foxit Corporation)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-02-17] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-02-17] (globalUpdate) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-10] (Nero AG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2005-02-24] (Macrovision Corporation) [File not signed]
R2 lmhosts; C:\Windows\system32\svchost.exe [38792 2014-10-29] (Microsoft Corporation)
R2 lmhosts; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [417640 2015-03-13] (LogMeIn, Inc.)
R2 LMIMaint; C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe [234344 2015-03-13] (LogMeIn, Inc.)
R2 LogMeIn; C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe [407424 2014-10-22] (LogMeIn, Inc.)
R2 NlaSvc; C:\Windows\System32\svchost.exe [38792 2014-10-29] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [38792 2014-10-29] (Microsoft Corporation)
R2 nsi; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-20] (Realtek Semiconductor)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-11-14] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 Update Cyti Web; "C:\Program Files (x86)\Cyti Web\updateCytiWeb.exe" [X]
S2 Util Cyti Web; "C:\Program Files (x86)\Cyti Web\bin\utilCytiWeb.exe" [X]
S2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-02-15] (Advanced Micro Devices)
S3 AVerAF35; C:\Windows\System32\Drivers\HPAF35.sys [511104 2009-10-19] (Hewlett-Packard)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R2 LMIInfo; C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [16056 2014-10-22] (LogMeIn, Inc.)
S4 LMIRfsClientNP; No ImagePath
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288328 2013-01-24] (Realtek Semiconductor Corp.)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [448072 2013-02-02] (RTS Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation                           )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-02-06] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [31984 2013-02-06] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-09-11] (Hewlett-Packard Development Company, L.P.)
R1 {955a1491-962c-4a4d-a25b-ddfc77991b58}Gw64; C:\Windows\System32\drivers\{955a1491-962c-4a4d-a25b-ddfc77991b58}Gw64.sys [48832 2015-02-16] (StdLib)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-05 20:51 - 2015-04-05 20:51 - 00026161 _____ () C:\Users\Marek\Desktop\FRST.txt
2015-04-05 20:51 - 2015-04-05 20:51 - 00000000 ____D () C:\FRST
2015-04-05 20:49 - 2015-04-05 20:49 - 00112640 _____ (forum.viry.cz) C:\Users\Marek\Desktop\FRSTLauncher.exe
2015-04-05 20:48 - 2015-04-05 20:48 - 00112640 _____ (forum.viry.cz) C:\Users\Marek\Downloads\Nepotvrzeno 393270.crdownload
2015-04-05 20:47 - 2015-04-05 20:48 - 02095616 _____ (Farbar) C:\Users\Marek\Desktop\FRST64.exe
2015-04-05 20:39 - 2015-04-05 20:46 - 00000000 ____D () C:\Program Files\trend micro
2015-04-05 20:39 - 2015-04-05 20:41 - 00000000 ____D () C:\rsit
2015-04-05 20:36 - 2015-04-05 20:36 - 01222144 _____ () C:\Users\Marek\Downloads\RSITx64.exe
2015-04-04 17:39 - 2015-04-04 17:39 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2015-04-04 17:37 - 2015-04-04 17:37 - 00937208 _____ (Crawler.com ) C:\Users\Marek\Downloads\SpywareTerminatorSetup.exe
2015-04-03 09:15 - 2015-04-03 21:34 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2015-04-02 08:44 - 2015-04-05 20:44 - 00001338 _____ () C:\WINDOWS\Tasks\green_game_notification_service.job
2015-04-02 08:44 - 2015-04-05 20:29 - 00000700 _____ () C:\WINDOWS\Tasks\green_game_updating_service.job
2015-04-02 08:44 - 2015-04-05 20:28 - 00001030 _____ () C:\WINDOWS\Tasks\jEBmVfTeeSZD7yI.job
2015-03-29 19:31 - 2014-02-05 14:42 - 557291326 _____ () C:\Users\Marek\Desktop\Vyprávěj osudy 4. díl – Mikulášova Hilda.avi
2015-03-23 14:11 - 2015-03-23 14:11 - 00000573 _____ () C:\Users\Marek\Documents\Conversion.txt
2015-03-23 14:11 - 2015-03-23 14:11 - 00000000 ____D () C:\Users\Marek\Documents\DRIVE_Z
2015-03-22 17:47 - 2015-03-22 17:47 - 00000000 ____D () C:\WINDOWS\Sun
2015-03-22 17:36 - 2015-03-22 17:36 - 00561064 _____ (Oracle Corporation) C:\Users\Marek\Downloads\chromeinstall-8u40.exe
2015-03-22 17:35 - 2015-03-22 17:35 - 00000000 ____D () C:\Users\Marek\Desktop\Dva a pul chlapa
2015-03-12 15:36 - 2015-03-12 15:54 - 00000000 ____D () C:\Users\Marek\Downloads\_Xperia SOLA
2015-03-11 08:39 - 2015-02-20 05:03 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-03-11 08:39 - 2015-02-20 04:58 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-03-11 08:39 - 2015-02-20 04:20 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-03-11 08:39 - 2015-02-20 04:15 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-03-11 08:39 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-03-11 08:39 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-11 08:39 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-11 08:39 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-11 08:38 - 2015-03-06 04:53 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-11 08:38 - 2015-03-06 04:33 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-11 08:38 - 2015-02-26 01:26 - 04178944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-03-11 08:38 - 2015-02-06 03:28 - 02257408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-03-11 08:38 - 2015-02-06 03:08 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-03-11 08:38 - 2015-02-04 01:58 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-03-11 08:38 - 2015-02-04 01:58 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-03-11 08:38 - 2015-02-04 01:58 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-03-11 08:38 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-03-11 08:38 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-03-11 08:38 - 2015-01-31 01:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-03-11 08:38 - 2015-01-31 01:29 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-11 08:38 - 2015-01-29 03:11 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-11 08:38 - 2015-01-29 03:04 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-11 08:38 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-11 08:38 - 2015-01-29 03:00 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-11 08:38 - 2015-01-29 02:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-11 08:38 - 2015-01-29 02:50 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-11 08:38 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-03-11 08:38 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-03-11 08:38 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-03-11 08:38 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-03-11 08:37 - 2015-02-21 03:16 - 25021440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-11 08:37 - 2015-02-21 02:41 - 12827648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-03-11 08:37 - 2015-02-21 02:27 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-03-11 08:37 - 2015-02-21 02:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-03-11 08:37 - 2015-02-21 02:25 - 19720192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-03-11 08:37 - 2015-02-21 01:58 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-03-11 08:37 - 2015-02-21 01:32 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-03-11 08:37 - 2015-02-20 04:49 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-11 08:37 - 2015-02-20 04:48 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-11 08:37 - 2015-02-20 04:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-03-11 08:37 - 2015-02-20 04:35 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-03-11 08:37 - 2015-02-20 04:34 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-03-11 08:37 - 2015-02-20 04:32 - 06035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-03-11 08:37 - 2015-02-20 04:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-03-11 08:37 - 2015-02-20 04:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-03-11 08:37 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-03-11 08:37 - 2015-02-20 04:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-03-11 08:37 - 2015-02-20 04:03 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-03-11 08:37 - 2015-02-20 03:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-03-11 08:37 - 2015-02-20 03:56 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-03-11 08:37 - 2015-02-20 03:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-03-11 08:37 - 2015-02-20 03:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-11 08:37 - 2015-02-20 03:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-03-11 08:37 - 2015-02-20 03:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-03-11 08:37 - 2015-02-20 03:43 - 14398976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-11 08:37 - 2015-02-20 03:30 - 04300288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-03-11 08:37 - 2015-02-20 03:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-03-11 08:37 - 2015-02-20 03:29 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-03-11 08:37 - 2015-02-20 03:28 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-11 08:37 - 2015-02-20 03:26 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-03-11 08:37 - 2015-02-20 03:24 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-03-11 08:37 - 2015-02-20 03:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-03-11 08:37 - 2015-02-20 03:16 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-11 08:37 - 2015-02-20 03:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-03-11 08:37 - 2015-02-20 03:01 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-03-11 08:37 - 2015-02-20 02:57 - 01311232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-03-11 08:37 - 2015-02-20 02:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-03-11 08:37 - 2015-02-07 01:09 - 00396419 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-03-11 08:37 - 2015-02-05 22:24 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-11 08:37 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-11 08:37 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-03-11 08:37 - 2015-01-30 05:01 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-03-11 08:37 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-03-11 08:37 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-03-11 08:37 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-03-11 08:37 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-03-11 08:37 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-03-11 08:36 - 2015-02-12 19:40 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-11 08:36 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-11 08:36 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-03-11 08:36 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-11 08:36 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-11 08:36 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-03-11 08:36 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-11 08:36 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-11 08:35 - 2015-02-12 19:34 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-11 08:35 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-03-11 08:35 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-03-11 08:35 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-03-11 08:35 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-03-11 08:35 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-03-11 08:35 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-03-11 08:35 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-11 08:35 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-11 08:35 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-03-11 08:35 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-11 08:35 - 2015-01-29 02:59 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-11 08:35 - 2015-01-29 02:49 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-11 08:35 - 2015-01-28 17:41 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-11 08:35 - 2015-01-28 17:41 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-03-11 08:35 - 2015-01-28 17:41 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-03-11 08:35 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-03-11 08:35 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-03-11 08:35 - 2015-01-21 07:54 - 01384712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-11 08:35 - 2015-01-21 07:15 - 01123848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-11 08:35 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-03-09 11:46 - 2015-03-09 15:01 - 00000000 ____D () C:\Users\Marek\Documents\_web
2015-03-09 11:44 - 2015-03-09 12:32 - 00000000 ____D () C:\Users\Marek\Downloads\PSPad
2015-03-09 11:43 - 2015-03-09 11:43 - 02895728 _____ () C:\Users\Marek\Downloads\pspad460b2652.zip
2015-03-06 07:58 - 2015-03-06 08:00 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-05 20:50 - 2013-11-14 11:28 - 01774444 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-05 20:44 - 2015-02-17 09:22 - 00000998 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-04-05 20:43 - 2013-09-02 13:07 - 00000000 ____D () C:\Users\Marek\AppData\Local\VirtualStore
2015-04-05 20:39 - 2015-02-17 09:39 - 00005536 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00005536 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00005202 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00003492 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00003156 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00002464 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00002464 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job
2015-04-05 20:39 - 2015-02-17 09:39 - 00002130 _____ () C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job
2015-04-05 20:35 - 2013-11-14 11:07 - 01934988 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-05 20:35 - 2013-09-30 05:56 - 00802206 _____ () C:\WINDOWS\system32\perfh005.dat
2015-04-05 20:35 - 2013-09-30 05:56 - 00183700 _____ () C:\WINDOWS\system32\perfc005.dat
2015-04-05 20:31 - 2013-11-14 13:59 - 00000000 ___DO () C:\Users\Marek\SkyDrive
2015-04-05 20:30 - 2014-05-29 08:21 - 00000000 ___RD () C:\Users\Marek\Disk Google
2015-04-05 20:30 - 2014-02-18 17:12 - 00000000 ___RD () C:\Users\Marek\Dropbox
2015-04-05 20:30 - 2014-02-18 15:27 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Dropbox
2015-04-05 20:29 - 2014-02-06 11:56 - 00000000 ____D () C:\Users\Marek\AppData\Local\HTC MediaHub
2015-04-05 20:28 - 2015-02-17 09:22 - 00001358 _____ () C:\WINDOWS\Tasks\CTVO.job
2015-04-05 20:28 - 2015-02-17 09:22 - 00000994 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-04-05 20:28 - 2014-10-27 11:35 - 00001027 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Client.lnk
2015-04-05 20:28 - 2014-10-27 11:35 - 00001011 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Control Panel.lnk
2015-04-05 20:28 - 2013-08-22 16:46 - 00356116 _____ () C:\WINDOWS\setupact.log
2015-04-05 20:28 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-05 20:27 - 2015-01-06 17:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-05 20:27 - 2013-09-29 21:01 - 00038962 _____ () C:\WINDOWS\PFRO.log
2015-04-05 20:20 - 2014-10-27 11:34 - 00000000 ____D () C:\ProgramData\LogMeIn
2015-04-05 20:20 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-04 18:03 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-04-04 18:02 - 2014-02-24 08:27 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-03 23:22 - 2014-06-11 11:17 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\vlc
2015-04-03 23:11 - 2013-09-02 13:19 - 00000980 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-29 21:37 - 2013-11-14 11:10 - 00000000 ____D () C:\Users\Marek
2015-03-29 17:50 - 2013-10-07 07:46 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-03-23 09:34 - 2013-09-03 07:36 - 00000000 ____D () C:\Users\Marek\AppData\Local\Windows Live
2015-03-22 17:46 - 2014-01-10 10:55 - 00000000 ____D () C:\Program Files (x86)\Java
2015-03-22 17:43 - 2014-02-10 09:29 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-03-22 17:43 - 2014-01-10 10:56 - 00000000 ____D () C:\ProgramData\Oracle
2015-03-18 15:23 - 2013-10-07 07:46 - 00001070 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-03-18 10:32 - 2013-09-03 14:31 - 00000000 ____D () C:\Users\Marek\AppData\Local\GHISLER
2015-03-16 17:43 - 2014-06-04 09:13 - 00000000 ____D () C:\_work
2015-03-16 08:51 - 2014-02-18 15:30 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-13 12:29 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-03-13 10:11 - 2013-08-22 16:44 - 00563888 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-13 10:07 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-13 08:54 - 2014-10-27 11:34 - 00000000 ____D () C:\Program Files (x86)\LogMeIn
2015-03-13 08:53 - 2014-10-27 11:35 - 00107392 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIRfsClientNP.dll
2015-03-13 08:53 - 2014-10-27 11:35 - 00035688 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIport.dll
2015-03-13 08:53 - 2014-10-27 11:34 - 00092520 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIinit.dll
2015-03-11 17:13 - 2014-05-29 08:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-03-11 10:04 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-03-11 10:01 - 2013-09-02 13:46 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-11 09:47 - 2013-09-03 14:56 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-11 09:32 - 2013-09-03 14:56 - 122905848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-11 09:20 - 2012-07-26 07:26 - 00000269 _____ () C:\WINDOWS\win.ini
2015-03-06 08:12 - 2013-08-22 17:37 - 00005217 _____ () C:\WINDOWS\DtcInstall.log
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2015-03-06 08:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2015-03-06 08:01 - 2013-09-30 05:58 - 00000000 ____D () C:\Program Files\Windows Journal
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\sppui
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\setup
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Com
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2015-03-06 08:01 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-03-06 08:01 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2015-03-06 08:01 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2015-03-06 08:01 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\servicing
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ___SD () C:\WINDOWS\system32\dsc
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\WinBioPlugIns
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sppui
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-03-06 08:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\IME
2015-03-06 08:00 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2015-03-06 08:00 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2015-03-06 08:00 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2015-03-06 07:59 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2015-03-06 07:59 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-03-06 07:59 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2015-03-06 07:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\WindowsPowerShell

==================== Files in the root of some directories =======

2015-01-25 18:12 - 2015-01-25 18:12 - 0001248 _____ () C:\Users\Marek\AppData\Roaming\CTVO
2013-11-01 08:46 - 2013-11-01 08:46 - 2106893 _____ () C:\Users\Marek\AppData\Roaming\langInstall.exe
2015-02-27 14:14 - 2015-02-27 14:14 - 0001465 _____ () C:\Users\Marek\AppData\Local\recently-used.xbel
2013-09-25 16:12 - 2013-09-25 16:12 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some content of TEMP:
====================
C:\Users\Marek\AppData\Local\Temp\AcDeltree.exe
C:\Users\Marek\AppData\Local\Temp\aiw-731240218.DLL
C:\Users\Marek\AppData\Local\Temp\Checkupdate.exe
C:\Users\Marek\AppData\Local\Temp\COMAP.EXE
C:\Users\Marek\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmplwv6cs.dll
C:\Users\Marek\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\Marek\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Marek\AppData\Local\Temp\gcapi_dll.dll
C:\Users\Marek\AppData\Local\Temp\gtapi_signed.dll
C:\Users\Marek\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD. Check to make sure user is administrator or see Addition.txt for additional information.

==================== End Of Log ============================
a ješte Addition

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Marek at 2015-04-05 20:52:41
Running from C:\Users\Marek\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Disabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\uTorrent) (Version: 3.3.1.30003 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
Advanced IP Scanner v1.4 (HKLM-x32\...\Advanced IP Scanner v1.4) (Version:  - )
AMD Catalyst Install Manager (HKLM\...\{9E2BF31C-7E39-C549-8AFE-56C3B927BD91}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Aspell 0.6 Dictionary (Language: cs) (HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Aspell6-Dictionary-cs) (Version:  - )
Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)
CADKON+ TZB 2013 (Version: 17.00.0000 - AB Studio) Hidden
CADKON+ TZB 2013 pro AdvanceCAD 2013 (HKLM-x32\...\InstallShield_{0ABCECAD-0B00-0400-0100-0AB013000003}) (Version:  - )
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3711 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2527 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2606 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.5004 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6117 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
deskPDF Studio X (HKLM-x32\...\deskPDF Studio_is1) (Version:  - Docudesk)
Dropbox (HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Dropbox) (Version: 3.2.9 - Dropbox, Inc.)
DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
ESET NOD32 Antivirus (HKLM\...\{AB1AA952-0F66-42B2-B8B0-6B94FC500132}) (Version: 8.0.304.1 - ESET, spol s r. o.)
Ethereal 0.99.0 (HKLM-x32\...\Ethereal) (Version: 0.99.0 - The Ethereal developer community, http://www.ethereal.com)
Exif Pilot 4.7 (HKLM-x32\...\Exif Pilot_is1) (Version: 4.7 - Two Pilots)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FastStone Image Viewer 4.8 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.8 - FastStone Soft)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Foxit Advanced PDF Editor 3 (HKLM-x32\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.0.5.0 - Foxit Corporation)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.2.75.126 - Foxit Corporation)
Foxit PDF Editor (HKLM-x32\...\Foxit PDF Editor) (Version: 2.2.0.0205 - Foxit Software)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.1.4.217 - Foxit Corporation)
Free DWG Viewer 7.2 (HKLM-x32\...\{90751489-B709-4D2F-8634-FEE00BFEC41A}) (Version: 7.2.0.51 - IGC)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
GoldWave v5.70 (HKLM-x32\...\GoldWave v5.70) (Version: 5.70 - GoldWave Inc.)
Google Drive (HKLM-x32\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Chrome Backup 1.7.0.114 (HKLM-x32\...\{52291FC0-33D3-4A18-9587-5115225545D8}_is1) (Version:  - )
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Graitec - Advance CAD 2013 (HKLM\...\{EA5668B5-6F9A-4499-A7E1-FEF831DCF617}) (Version: 2.0.0.1053 - Graitec)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM-x32\...\{AE2F1669-5B1F-47C5-B639-78D74DD0BCE4}) (Version: 6.0.9.1 - Název společnosti:)
HP CoolSense (HKLM-x32\...\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}) (Version: 2.10.51 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{368E4EF8-E840-40EE-A224-50B8D1DC2B12}) (Version: 2.4.36.0 - HTC)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kompaktní jednotky DUPLEX - návrhový program (HKLM-x32\...\Atrea.Application_400) (Version: 7.70.542 - Atrea s.r.o.)
LogDat2 (HKLM\...\{3CDFE5C3-DAFF-4E34-991B-C1637F8B6B23}) (Version: 1.4.3 - TSI)
LogMeIn (HKLM-x32\...\{6A38EDD8-66E4-4FD1-B7D0-DDC37285F44B}) (Version: 4.1.4652 - LogMeIn, Inc.)
Malwarebytes Anti-Malware verze 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office 2010 pro podnikatele (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.3.0 - Mozilla)
Mozilla Thunderbird 31.6.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 31.6.0 (x86 cs)) (Version: 31.6.0 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
Network Scanner Utility 3 (x32 Version: 1.1.1 - Xerox Corporation) Hidden
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Název společnosti:)
Opera Stable 28.0.1750.48 (HKLM-x32\...\Opera 28.0.1750.48) (Version: 28.0.1750.48 - Opera Software ASA)
PDF Split And Merge Basic (HKLM\...\{9A40D2F8-9458-458B-95E3-B57797C574E1}) (Version: 2.2.4 - Andrea Vacondio)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.1 - pdfforge)
Pdfedit (HKLM-x32\...\{6C11089A-E23F-4E9B-B12C-316BF1A4376B}) (Version: 4.5.0.0 - PdfEdit team)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6856 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.007 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-003B-0000-1000-0000000FF1CE}_Office14.PRJPROR_{DC528101-617D-4E9F-B131-F8F8C52E649B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version:  - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{1AC740A9-04B1-4445-BC82-E0F9DA6BD1B0}) (Version: 6.1.00 - Silicon Laboratories, Inc.)
Speedmaster (HKLM-x32\...\ST5UNST #1) (Version:  - )
Spider Player 2.5.3 (HKLM-x32\...\Spider Player_is1) (Version: 2.5.3.0 - VIT Software, LLC)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.12.1 - Synaptics Incorporated)
SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)
Testy ZP de Luxe v. 4.1.0 (HKLM-x32\...\Testy ZP de Luxe/Commisar_is1) (Version:  - Jerry's Arms Software)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Xerox Network Scanner Utility 3 (HKLM-x32\...\InstallShield_{82491233-0FDD-459D-B8DF-C22AD344AAD0}) (Version: 1.1.1 - Xerox Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

ATTENTION: System Restore is disabled.
Check "winmgmt" service or repair WMI.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => 
Task: C:\WINDOWS\Tasks\CTVO.job => 
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job =>  <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => 
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => 
Task: C:\WINDOWS\Tasks\green_game_notification_service.job => 
Task: C:\WINDOWS\Tasks\green_game_updating_service.job => 
Task: C:\WINDOWS\Tasks\jEBmVfTeeSZD7yI.job => 
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => 

==================== Loaded Modules (whitelisted) ==============

2014-01-27 11:46 - 2014-01-27 11:46 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\ProgramData\Temp:A1EDB939
AlternateDataStreams: C:\Users\Marek\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Marek\Downloads\458033.jpg
DNS Servers: 192.168.254.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\StartupApproved\Run: => "Akamai NetSession Interface"

==================== Accounts: =============================

Administrator (S-1-5-21-1642780989-1191528856-3066596962-500 - Administrator - Disabled)
Guest (S-1-5-21-1642780989-1191528856-3066596962-501 - Limited - Disabled)
Marek (S-1-5-21-1642780989-1191528856-3066596962-1002 - Limited - Enabled) => C:\Users\Marek
Marek_2 (S-1-5-21-1642780989-1191528856-3066596962-1005 - Administrator - Enabled) => C:\Users\Marek_2

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/05/2015 08:31:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCC.exe, verze: 3.5.0.0, časové razítko: 0x4f8350e0
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17415, časové razítko: 0x54505737
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000008b9c
ID chybujícího procesu: 0x107c
Čas spuštění chybující aplikace: 0xCCC.exe0
Cesta k chybující aplikaci: CCC.exe1
Cesta k chybujícímu modulu: CCC.exe2
ID zprávy: CCC.exe3
Úplný název chybujícího balíčku: CCC.exe4
ID aplikace související s chybujícím balíčkem: CCC.exe5

Error: (04/05/2015 08:31:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/05/2015 08:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCC.EXE, verze: 3.5.0.0, časové razítko: 0x4f8350e0
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17415, časové razítko: 0x54505737
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000008b9c
ID chybujícího procesu: 0x928
Čas spuštění chybující aplikace: 0xCCC.EXE0
Cesta k chybující aplikaci: CCC.EXE1
Cesta k chybujícímu modulu: CCC.EXE2
ID zprávy: CCC.EXE3
Úplný název chybujícího balíčku: CCC.EXE4
ID aplikace související s chybujícím balíčkem: CCC.EXE5

Error: (04/05/2015 08:22:31 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.EXE
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/04/2015 05:22:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCC.exe, verze: 3.5.0.0, časové razítko: 0x4f8350e0
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17415, časové razítko: 0x54505737
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000008b9c
ID chybujícího procesu: 0x16e0
Čas spuštění chybující aplikace: 0xCCC.exe0
Cesta k chybující aplikaci: CCC.exe1
Cesta k chybujícímu modulu: CCC.exe2
ID zprávy: CCC.exe3
Úplný název chybujícího balíčku: CCC.exe4
ID aplikace související s chybujícím balíčkem: CCC.exe5

Error: (04/04/2015 05:22:42 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/03/2015 09:48:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 6.3.9600.17415, časové razítko: 0x545042b7
Název chybujícího modulu: twinapi.appcore.dll, verze: 6.3.9600.17415, časové razítko: 0x54503c4d
Kód výjimky: 0xc000027b
Posun chyby: 0x0000000000063c1f
ID chybujícího procesu: 0xa54
Čas spuštění chybující aplikace: 0xbackgroundTaskHost.exe0
Cesta k chybující aplikaci: backgroundTaskHost.exe1
Cesta k chybujícímu modulu: backgroundTaskHost.exe2
ID zprávy: backgroundTaskHost.exe3
Úplný název chybujícího balíčku: backgroundTaskHost.exe4
ID aplikace související s chybujícím balíčkem: backgroundTaskHost.exe5

Error: (04/03/2015 09:36:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCC.exe, verze: 3.5.0.0, časové razítko: 0x4f8350e0
Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17415, časové razítko: 0x54505737
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000008b9c
ID chybujícího procesu: 0x164
Čas spuštění chybující aplikace: 0xCCC.exe0
Cesta k chybující aplikaci: CCC.exe1
Cesta k chybujícímu modulu: CCC.exe2
ID zprávy: CCC.exe3
Úplný název chybujícího balíčku: CCC.exe4
ID aplikace související s chybujícím balíčkem: CCC.exe5

Error: (04/03/2015 09:36:53 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/01/2015 06:25:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: backgroundTaskHost.exe, verze: 6.3.9600.17415, časové razítko: 0x545042b7
Název chybujícího modulu: twinapi.appcore.dll, verze: 6.3.9600.17415, časové razítko: 0x54503c4d
Kód výjimky: 0xc000027b
Posun chyby: 0x0000000000063c1f
ID chybujícího procesu: 0xf88
Čas spuštění chybující aplikace: 0xbackgroundTaskHost.exe0
Cesta k chybující aplikaci: backgroundTaskHost.exe1
Cesta k chybujícímu modulu: backgroundTaskHost.exe2
ID zprávy: backgroundTaskHost.exe3
Úplný název chybujícího balíčku: backgroundTaskHost.exe4
ID aplikace související s chybujícím balíčkem: backgroundTaskHost.exe5


System errors:
=============
Error: (04/05/2015 08:28:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Util Cyti Web neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (04/05/2015 08:28:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Cyti Web neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (04/05/2015 08:28:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WindowsMangerProtect Service neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (04/05/2015 08:27:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Superfetch byla ukončena s následující chybou: 
%%1062

Error: (04/04/2015 05:22:36 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače PREDATOR-PC,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{E2DA533B-C650-4664-ACE9-9876E84CB05B}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (03/31/2015 07:55:21 AM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku G: nelze přečíst.

Error: (03/29/2015 05:44:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Util Cyti Web neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (03/29/2015 05:44:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Update Cyti Web neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (03/29/2015 05:44:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WindowsMangerProtect Service neuspěla při spuštění v důsledku následující chyby: 
%%2

Error: (03/29/2015 05:44:51 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:05:05, ‎28. ‎3. ‎2015) bylo neočekávané.


Microsoft Office Sessions:
=========================
Error: (04/05/2015 08:31:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe3.5.0.04f8350e0KERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9c107c01d06fce92118db7C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\system32\KERNELBASE.dllf6e5db9e-dbc1-11e4-bead-7446a07ec4ec

Error: (04/05/2015 08:31:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/05/2015 08:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.EXE3.5.0.04f8350e0KERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9c92801d06fcd5e15d79eC:\PROGRAM FILES (X86)\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXEC:\WINDOWS\system32\KERNELBASE.dllb90d8f10-dbc0-11e4-beac-7446a07ec4ec

Error: (04/05/2015 08:22:31 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.EXE
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/04/2015 05:22:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe3.5.0.04f8350e0KERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9c16e001d06eeb1588abefC:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\system32\KERNELBASE.dll7001ab9b-dade-11e4-beac-7446a07ec4ec

Error: (04/04/2015 05:22:42 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/03/2015 09:48:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: backgroundTaskHost.exe6.3.9600.17415545042b7twinapi.appcore.dll6.3.9600.1741554503c4dc000027b0000000000063c1fa5401d06e4729ab114cC:\WINDOWS\system32\backgroundTaskHost.exeC:\Windows\System32\twinapi.appcore.dll7314a315-da3a-11e4-beac-7446a07ec4ec5212B572.Tapatalk_1.2.1.27_x64__x3k7qc8mm3xn6App

Error: (04/03/2015 09:36:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: CCC.exe3.5.0.04f8350e0KERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9c16401d06e45477cc7c6C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exeC:\WINDOWS\system32\KERNELBASE.dllc7a98a9a-da38-11e4-beac-7446a07ec4ec

Error: (04/03/2015 09:36:53 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: CCC.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ObjectDisposedException
Zásobník:
   na System.Threading.TimerQueueTimer.Change(UInt32, UInt32)
   na ATI.ACE.CCC.Implementation.CCC_Main.CCCNewThreadBegin(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Threading.ThreadHelper.ThreadStart(System.Object)

Error: (04/01/2015 06:25:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: backgroundTaskHost.exe6.3.9600.17415545042b7twinapi.appcore.dll6.3.9600.1741554503c4dc000027b0000000000063c1ff8801d06c9864add6d1C:\WINDOWS\system32\backgroundTaskHost.exeC:\Windows\System32\twinapi.appcore.dllaff81111-d88b-11e4-beac-7446a07ec4ec5212B572.Tapatalk_1.2.1.27_x64__x3k7qc8mm3xn6App


CodeIntegrity Errors:
===================================
  Date: 2015-02-17 08:48:38.432
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-02-13 11:03:40.466
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-26 08:03:52.310
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-20 08:15:41.576
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-06 17:21:14.119
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-17 08:15:27.294
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-08 09:07:10.995
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-11-24 08:24:30.171
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-11-12 17:17:32.863
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-10-21 15:20:21.885
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: AMD A8-5550M APU with Radeon(tm) HD Graphics 
Percentage of memory in use: 22%
Total physical RAM: 7389.2 MB
Available physical RAM: 5703.39 MB
Total Pagefile: 8541.2 MB
Available Pagefile: 6744.97 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:912.91 GB) (Free:782.12 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:17.49 GB) (Free:1.72 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (Disc) (CDROM) (Total:0.2 GB) (Free:0 GB) UDF
Drive g: () (Removable) (Total:29.04 GB) (Free:7.44 GB) FAT32

==================== MBR & Partition Table ==================

==================== End Of Log ============================

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 05 dub 2015 19:59
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 05 dub 2015 21:46
od mr.BSE
Zdravím Vás,
Vás odkaz je nefunkční, stáhl jsem tedy ADWC z webu a dal jsem scan a pak clean a po restartu už ADWcleaner nenaběhl. Spustil jsem jej znu a spustil znovu pouze scan a pak zkopíroval log:

Kód: Vybrat vše

# AdwCleaner v4.200 - Log vytvooen 05/04/2015 v 22:38:55
# Aktualizováno 29/03/2015 by Xplode
# Databáze : 2015-03-29.1 [Server]
# Operaení system : Windows 8.1  (x64)
# Uživatelské jméno : Marek_2 - NTB-MAREK
# Spuštino z  : C:\Users\Marek\Desktop\adwcleaner_4.200.exe
# Nastavení : Sken

***** [ Služby ] *****


***** [ Soubory / Složky ] *****


***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeee ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v41.0.2272.118


*************************

AdwCleaner[R0].txt - [11337 bytu] - [05/04/2015 22:32:06]
AdwCleaner[R1].txt - [663 bytu] - [05/04/2015 22:38:55]
AdwCleaner[S0].txt - [10529 bytu] - [05/04/2015 22:34:33]

########## EOF - \AdwCleaner\AdwCleaner[R1].txt - [779 bytu] ##########
EDIT: odkaz již funguje.

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 06 dub 2015 10:21
od Rudy
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Policies\Explorer: []
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {5920b7ca-8f16-11e3-be86-7446a07ec4ec} - "F:\ZTE_Handset_USB_Driver.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {88cf74af-37d9-11e3-be80-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {9ee52764-485d-11e3-be83-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {9eeddd1d-6727-11e3-be85-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {c11e0fe9-9e01-11e3-be8a-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {e4f0cbfe-195b-11e3-be7b-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {ed18201a-a2b9-11e2-be72-806e6f6e6963} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL E:\START.html
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {f0b3e9e9-2a8b-11e3-be7d-7446a07ec4ec} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL F:\start.html
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
URLSearchHook: [S-1-5-21-1642780989-1191528856-3066596962-1005] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM -> {A6406889-136E-4F5B-A301-971AF502109F} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
SearchScopes: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.omniboxes.com/?type=sc&ts=14 ... X532KP0T6T
C:\WINDOWS\Tasks\jEBmVfTeeSZD7yI.job
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Marek\AppData\Local\Temp
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => <==== ATTENTION
AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\ProgramData\Temp:A1EDB939
AlternateDataStreams: C:\Users\Marek\SkyDrive:ms-properties
End
Uložte na plochu jako fixlist.txt. Pak znovu spusťte FRST a klikněte na >Fix<. Zkopírujte sem pak log, který se na závěr vytvoří.

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 06 dub 2015 17:31
od mr.BSE
požadovaný log:

Kód: Vybrat vše

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by Marek at 2015-04-06 18:26:40 Run:1
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek (Available profiles: Marek & Marek_2)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\Policies\Explorer: []
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {5920b7ca-8f16-11e3-be86-7446a07ec4ec} - "F:\ZTE_Handset_USB_Driver.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {88cf74af-37d9-11e3-be80-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {9ee52764-485d-11e3-be83-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {9eeddd1d-6727-11e3-be85-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {c11e0fe9-9e01-11e3-be8a-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {e4f0cbfe-195b-11e3-be7b-7446a07ec4ec} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {ed18201a-a2b9-11e2-be72-806e6f6e6963} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL E:\START.html
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\...\MountPoints2: {f0b3e9e9-2a8b-11e3-be7d-7446a07ec4ec} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL F:\start.html
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... 2KP0T6T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... 2KP0T6T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... 2KP0T6T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... 2KP0T6T&q={searchTerms}
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
URLSearchHook: [S-1-5-21-1642780989-1191528856-3066596962-1005] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKLM -> {A6406889-136E-4F5B-A301-971AF502109F} URL = http://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Toolbar: HKU\S-1-5-21-1642780989-1191528856-3066596962-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.omniboxes.com/?type=sc&ts=14 ... X532KP0T6T
C:\WINDOWS\Tasks\jEBmVfTeeSZD7yI.job
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Marek\AppData\Local\Temp
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => <==== ATTENTION
AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
AlternateDataStreams: C:\ProgramData\Temp:A1EDB939
AlternateDataStreams: C:\Users\Marek\SkyDrive:ms-properties
End
*****************

HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => Value could not be deleted.
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5920b7ca-8f16-11e3-be86-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{5920b7ca-8f16-11e3-be86-7446a07ec4ec} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{88cf74af-37d9-11e3-be80-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{88cf74af-37d9-11e3-be80-7446a07ec4ec} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9ee52764-485d-11e3-be83-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{9ee52764-485d-11e3-be83-7446a07ec4ec} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9eeddd1d-6727-11e3-be85-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{9eeddd1d-6727-11e3-be85-7446a07ec4ec} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c11e0fe9-9e01-11e3-be8a-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{c11e0fe9-9e01-11e3-be8a-7446a07ec4ec} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4f0cbfe-195b-11e3-be7b-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{e4f0cbfe-195b-11e3-be7b-7446a07ec4ec} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ed18201a-a2b9-11e2-be72-806e6f6e6963} => Key could not be deleted. Access denied.
HKCR\CLSID\{ed18201a-a2b9-11e2-be72-806e6f6e6963} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0b3e9e9-2a8b-11e3-be7d-7446a07ec4ec} => Key could not be deleted. Access denied.
HKCR\CLSID\{f0b3e9e9-2a8b-11e3-be7d-7446a07ec4ec} => Key not found. 
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1 => Key could not be deleted. Access denied.
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Key not found. 
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2 => Key could not be deleted. Access denied.
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Key not found. 
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3 => Key could not be deleted. Access denied.
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => Key not found. 
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1 => Key could not be deleted. Access denied.
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Key not found. 
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2 => Key could not be deleted. Access denied.
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Key not found. 
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3 => Key could not be deleted. Access denied.
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => Key not found. 

"C:\WINDOWS\system32\GroupPolicy\Machine" directory move:

Could not move "C:\WINDOWS\system32\GroupPolicy\Machine" directory. => Scheduled to move on reboot.

Could not move "C:\WINDOWS\system32\GroupPolicy\GPT.ini" => Scheduled to move on reboot.
HKLM\SOFTWARE\Policies\Google => Key could not be deleted. Access denied.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Error setting value.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Error setting value.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Error setting value.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Error setting value.
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
Error setting Default URLSearchHook.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A6406889-136E-4F5B-A301-971AF502109F} => Key could not be deleted. Access denied.
HKCR\CLSID\{A6406889-136E-4F5B-A301-971AF502109F} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key could not be deleted. Access denied.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found. 
HKU\S-1-5-21-1642780989-1191528856-3066596962-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value deleted successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key not found. 
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Error setting value.
Could not move "C:\WINDOWS\Tasks\jEBmVfTeeSZD7yI.job" => Scheduled to move on reboot.
Could not move "C:\WINDOWS\system32\ApnDatabase.xml" => Scheduled to move on reboot.
"C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job" => File/Directory not found.
"C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job" => File/Directory not found.
"C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job" => File/Directory not found.
Could not move "C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job" => Scheduled to move on reboot.

"C:\Users\Marek\AppData\Local\Temp" directory move:

Could not move "C:\Users\Marek\AppData\Local\Temp" directory. => Scheduled to move on reboot.

C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-6.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-1-7.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-10_user.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-11.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-5_user.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-6.job not found.
C:\WINDOWS\Tasks\0754b3d0-e677-4fde-b05e-91fc06b122e4-7.job not found.
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job not found.
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job not found.
"C:\Windows" => ":{4B9A1497-0817-47C4-9612-D6A1C53ACF57}" ADS not found.
"C:\ProgramData\Temp" => ":A1EDB939" ADS not found.
C:\Users\Marek\SkyDrive => ":ms-properties" ADS removed successfully.
[code]
[/code]

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 06 dub 2015 18:26
od Rudy
Smazáno. Nastala nějaká změna?

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 07 dub 2015 07:01
od mr.BSE
Ano, vše je již bez problémů.

Mockrát děkuji :happy:

Re: prosím o kontrolu logu, zpomalený NTB

Napsal: 07 dub 2015 16:05
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz